CVE advisoryCRITICAL
CVE-2024-54879
SeaCMS 13.1 Incorrect Access Control Allows Unlimited Recharges.
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
SeaCMS has an incorrect access control vulnerability that allows any user to recharge memberships indefinitely. This could lead to financial abuse and service availability risks.